Microsoft 365 Identity and Services (MS-100)

Name: Microsoft 365 Identity and Services (MS-100)
Rating: 4.3 (8 reviews)

All about Microsoft 365 services

Created byStone River eLearning

Last updated 5/2023

English

What you'll learn

Understand how to design and implement Microsoft 365 services and integrate them with on-premises solutions.
Manage user identity and roles in Microsoft 365 by creating and managing user accounts, groups, and roles in Azure Active Directory.
Manage access and authentication in Microsoft 365 by configuring and managing Azure AD authentication, conditional access policies, and multi-factor authenticat
Plan and deploy Office 365 workloads and applications, including Exchange Online, SharePoint Online, and Teams.
Implement modern device services in Microsoft 365 by configuring and managing device policies, compliance, and conditional access.

Course content

4 sections • 53 lectures • 15h 58m total length

MS-100 Overview6:20
Explore the MS-100 overview, covering four domains: designing and implementing Microsoft 365 services, managing user identities and roles, managing access and authentication, and planning workloads and applications.
Evaluate Microsoft 365 for an Organization19:54
Evaluate Microsoft 365 for an organization by comparing Office 365 and Microsoft 365, covering licensing, Windows 10 integration, and security features like Azure Active Directory, Intune, and data loss protection.
Plan and Create Microsoft 365 Tenant20:44
Plan and create a Microsoft 365 tenant using a trial, covering domain name setup, namespace, regional tenancy, and license assignment in the Microsoft 365 admin center.
Configure Subscriptions14:46
Configure subscriptions by assigning a Microsoft 365 license to a user in the Admin Center, enabling Exchange mailbox, SharePoint site access, and Office apps across devices.
Configure Tenant and Specialist Admin Roles20:48
Explore Microsoft 365 admin roles and configure tenant and specialist admin roles, including global administrator, helpdesk, service, user management, billing, Exchange, SharePoint, and Teams administrators, applying least privilege.
Configure Additional Admin Roles18:34
Explore configuring additional admin roles in Microsoft 365, applying least privilege, and assigning workload-based roles such as Exchange, SharePoint, and Teams admins with multi-factor authentication.
Manage and Monitor Subscriptions15:35
Explore how to manage and monitor subscriptions using license administration, assign and reassign licenses, and apply least privilege with admin roles in Microsoft 365.
Plan for Microsoft 365 On-premises Infrastructure23:01
Plan for migrating from on-premises infrastructure to Microsoft 365 by assessing client operating systems, licensing paths, and network topology, then implement device management, conditional access, and information protection.
Plan Identity and Authentication Solution18:00
Plan identity and authentication strategies for Microsoft 365 by comparing cloud-only, password hash sync with SSO, pass-through authentication, and federated options, aligned with on-premises Active Directory and compliance needs.
Identify Data for Migration20:15
Identify critical data and determine what to migrate to Microsoft 365, considering governance, on-premises data, and data location; explore migration methods using SharePoint tools, OneDrive, and policy guidance.
Identify Users and Mailboxes for Migration16:11
Identify users and mailboxes for migration in a Microsoft 365 transition, comparing data vs. user migration and choosing among remote move, staged, cutover, express, and IMAP methods.
Import PST Files18:00
Import pst files into Exchange Online within Microsoft 365 using a six-step workflow with a pst mapping file; note that Outlook 2003 or earlier pst and ost files not supported.
Plan for On-Prem User and Group Migration18:47
Plan on-prem user and group migration by distinguishing active versus inactive accounts and mapping on-prem AD to Azure AD. Choose Office 365 or security groups to manage access and collaboration.
Design Domain Name Configuration17:11
Design domain name configuration in Microsoft 365 by adding and verifying a custom domain within a single tenancy, managing multiple domains (up to 900) and using your own domain.
Configure Workloads for a New Domain16:49
Configure workloads for a new domain in Microsoft 365 by enabling Exchange and Skype for Business, and update DNS records (MX, TXT, CNAME) at your registrar to verify ownership.
Configure User Identities for a New Domain13:58
Configure user identities for a new domain in Microsoft 365 by updating usernames and emails, verifying DNS setup, and adding subdomains to enable mail flow and services.
Manage Service Requests and Health Alerts17:10
Create Internal Service Health Response Plan15:52
Develop and implement an internal service health response plan for Microsoft 365 to communicate outages and planned maintenance using the message center, admin apps, and real-time service health via API.
Configure, Schedule and Review Reporting23:53
Configure, schedule, and review Microsoft 365 reports via the admin center, security and compliance center, and Power BI, focusing on usage data and data loss prevention.

Evaluate Identity Mgmt Requirements17:15
Evaluate identity management requirements in a hybrid Microsoft 365 environment by defining the source of authority between on-premises and cloud, and consider federation and single sign-on for apps and users.
Evaluate Directory Synchronization Requirements16:24
Evaluate Authentication Requirements19:57
Evaluate authentication requirements for Microsoft 365, comparing on-premises username and password with cloud methods like multi-factor and modern authentication. Explore conditional access, certificate options, and token-based approaches for secure access.
Design Directory Synchronization22:38
Design directory synchronization prepares you to sync users and groups to the cloud, covering on-premises domain readiness, forest and domain functional levels, AD Connect deployment, and non-routable domain considerations.
Implement Directory Synchronization21:58
Implement directory synchronization by auditing and preparing Active Directory, using IdFix to fix errors, verify UPN suffixes, and configure Azure AD Connect for Office 365.
Configure Directory Synchronization25:25
Monitor Azure AD Connect Health21:25
Learn how to monitor Azure AD Connect Health and verify on-premises synchronization with Azure Active Directory, view directory sync status, and diagnose sync errors for proactive health management.
Manage Azure AD Connect Sync13:58
Manage Azure AD Connect sync schedules with PowerShell, using Get-ADSyncScheduler and Set-ADSyncScheduler to enable delta or full sync and to force runs via Start-ADSyncSyncCycle.
Implement Multi-Forest AD Connect Scenarios23:48
Learn how to implement multi-forest AD Connect scenarios by consolidating forests into a single Azure AD Connect topology, ensuring unique user identities, single sign-on, and proper DNS and network readiness.
Plan Azure AD Identities18:15
Manage Azure AD Users and Groups22:28
Learn to manage Azure AD users and groups using GUI and PowerShell, create users and groups (security and Office 365), and explore dynamic membership and hybrid considerations for MS-100.
Manage Azure AD Passwords15:58
Learn to manage Azure AD passwords via the Microsoft 365 admin console, including manual resets, self-service password reset, and PowerShell to reset passwords and enforce change at next sign-in.
Manage Product Licenses20:46
Assign licenses to users in Azure Active Directory using GUI or PowerShell, manage usage location, and explore group-based licensing with Office 365 and E5 options.
Perform Bulk Azure AD User Mgmt15:55
Plan for User and Security and Compliance Roles20:04
Plan user and security compliance roles in Microsoft 365, delegating tasks with least privilege. Explore roles like eDiscovery Manager, Records Management, and data loss prevention to protect organizational data.
Manage Admin Rights and Roles18:27
Delegate administrative rights by assigning Azure Active Directory roles, reducing reliance on the global administrator. Manage workload roles for Exchange, OneDrive, Teams, and SharePoint via the interface or PowerShell.
Configure RBAC in Azure Active Directory13:32
Configure role-based access control in Azure Active Directory to manage who can access resources, using role assignments and common roles like owner, contributor, and read in the Azure portal.
Plan for PIM in Azure Active Directory16:17
Explains privileged identity management in Azure Active Directory, including time-bound, eligible versus active roles, approvals, activation, auditing, and monitoring for secure, temporary admin access.
Configure for PIM in Azure Active Directory15:59
Explore privileged identity management (PIM) in Azure Active Directory, enabling just-in-time access with activation duration to admin roles while enforcing least privilege.

Design an Authentication Method for M36520:13
Configure Authentication in AzureAD14:31
Configure authentication in Azure AD by enabling modern authentication, which supports multi-factor authentication, smart cards, and certificates for cloud and on-premises workloads.
Manage Authentication in AzureAD17:55
Learn how Azure AD manages authentication with Smart Lock, password protection, and MFA options, including self-service password reset and certificate-based methods, plus monitoring sign-ins and risk detections.
Design, Configure and Manage MFA for M36520:14
Learn to design, configure, and manage multi-factor authentication in Microsoft 365 using Azure Active Directory, including configuring authentication methods, monitoring activity, and managing user access.
Configure Application Registration in Azure AD16:49
Plan for Azure AD Application Proxy12:34
Configure Azure AD Application Proxy17:16
Configure Azure AD application proxy to enable remote access as a service, install the connector, set up a certificate, configure DNS, and test access from internal and external networks.
Create B2B and Guest Accounts in M36514:02
Design Solutions for External Access18:49
Design secure external access for Microsoft 365 resources by configuring SharePoint and OneDrive sharing, guest access, domain restrictions, and admin center policies across SharePoint, OneDrive, and Azure AD.

Identify Hybrid Req for Exchange17:44
Identify hybrid requirements for exchange by planning a hybrid environment that moves on-premises exchange to exchange online, covering server versions, on-prem roles, Autodiscover, DNS records, certificates, and Azure AD Connect.
Identify Hybrid Reqs for Other Workloads17:43
Identify hybrid requirements for SharePoint and Skype for Business in a Microsoft 365 hybrid environment, building on prior Exchange considerations, covering on-premises versus online deployment, federation, certificates, and connectivity basics.
Plan Migration Strategy for Exchange21:13
Plan exchange migration to the cloud using cutover, staged, hybrid, minimal hybrid, and express migration strategies, with prerequisites like on-premises exchange versions and directory synchronization.
Plan Migration Strategy for other Workloads12:04
Plan migration strategies for SharePoint and Skype for Business by evaluating on-premises to cloud moves, leveraging OneDrive sync, SharePoint Migration Tool, and PowerShell, and ensuring hybrid readiness and licensing.
Manage and Plan for Office 365 ProPlus22:22
Learn to manage and plan for Office 365 ProPlus, including licensing, deployment options, and admin center controls. Explore self provisioning, update channels, Windows vs Mac differences, and Office Online integration.
Plan for deploying Office 365 ProPlus19:00
Plan deployment of Office 365 ProPlus using SCCM, the Office Deployment Tool, and a self-service portal to manage installs and updates.

Requirements

Active Directory: Learners should be familiar with the basic concepts of Active Directory, including domain controllers, domain name system (DNS), and Group Policy Objects (GPOs).
PowerShell: Learners should have basic experience with PowerShell, Microsoft's command-line shell and scripting language.
Networking: Learners should have a basic understanding of networking concepts, including TCP/IP, Domain Name System (DNS), and firewalls.
Security: Learners should be familiar with basic security concepts, including authentication, authorization, and encryption.
Cloud Computing: Learners should have a basic understanding of cloud computing concepts, including the benefits and limitations of cloud services.

Description

The Microsoft 365 Identity and Services (MS-100) course is designed to equip IT professionals with the knowledge and skills required to manage user identity and access in Microsoft 365. The course covers various Microsoft 365 services, including Azure Active Directory, Exchange Online, SharePoint Online, and Teams.

The course is divided into the following modules:

1. Design and Implement Microsoft 365 Services: This module covers the design and implementation of various Microsoft 365 services, including Exchange Online, SharePoint Online, and Teams. It also covers the integration of these services with on-premises solutions.

2. Manage User Identity and Roles: This module covers the management of user identity and roles in Microsoft 365. It includes creating and managing user accounts, groups, and roles in Azure Active Directory.

3. Manage Access and Authentication: This module covers the management of access and authentication in Microsoft 365. It includes configuring and managing Azure AD authentication, conditional access policies, and multi-factor authentication.

4. Plan Office 365 Workloads and Applications: This module covers the planning and deployment of Office 365 workloads and applications. It includes planning for Exchange Online, SharePoint Online, and Teams.

5. Implement Modern Device Services: This module covers the implementation of modern device services in Microsoft 365. It includes configuring and managing device policies, compliance, and conditional access.

By the end of the course, learners should have a good understanding of how to effectively manage user identity and access in Microsoft 365 and be able to apply their knowledge in a real-world context. The course is suitable for IT professionals, including administrators and consultants, who are responsible for managing user identity and access in Microsoft 365 environments.

Who this course is for:

IT Administrators
IT Consultants
Security Administrators
Cloud Solutions Architects

Microsoft 365 Identity and Services (MS-100)

What you'll learn

Explore related topics

Course content

Design and Implement Microsoft 365 Services19 lectures • 5hr 36min

Manage User Identity and Roles19 lectures • 6hr

Manage Access and Authentication9 lectures • 2hr 32min

Plan Office 365 Workloads and Applications6 lectures • 1hr 50min

Requirements

Description

Who this course is for: